Overview

overview

3

Static

static

3

19dd9da789...5d.pdf

windows7-x64

1

19dd9da789...5d.pdf

windows10-2004-x64

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20231129-en
  • resource tags

    arch:x64arch:x86image:win7-20231129-enlocale:en-usos:windows7-x64system
  • submitted
    19-12-2023 12:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    19dd9da78987f5704b6b1756db39b05d.pdf

  • Size

    85KB

  • MD5

    19dd9da78987f5704b6b1756db39b05d

  • SHA1

    2b85587fadb7b7eb3a06a7c10683f8a4b6d2cd67

  • SHA256

    e5eaff9d99d2959d8aa68ca96732484163d644e866113aaf046b4ae9ba5c4754

  • SHA512

    ef7bdb12c46278b93a4ae752ee4247df0b3f45dbff5588af81d2952b632f78e60b0689ba8d5afe6df0128044a7e5278d9c07a56cc34a52a45c50b74eb2bab00a

  • SSDEEP

    1536:H7hz1UGoL2tr2p0LWEhwsWW+eicr8U1eO/vYT0FH++8MMQfW8pO+5vrvNWDk5Ef8:bhz1UG/r2p0LZhtF+eicegrN+5QW+5vf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\19dd9da78987f5704b6b1756db39b05d.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2392

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    987d43114f70cc1f96dc9af33b5c8dcf

    SHA1

    747620330b77f35ea638833ec97a39a777a17122

    SHA256

    2a69a35d828ea409d070362891a456fb9f86bf3d0a649ed6186674f72dc966c1

    SHA512

    0ed10ae658d573be2202168342271c53c6ed13b328fc4c4ddabd39469c664f622ca4c3bc383f600432fce8b0c7eaf7fa53d576895c9b2d6e5892204bd66b9177

    Download Submit